VSCode IDE forks expose users to "recommended extension" attacks

Popular AI-powered integrated development environment solutions, such as Cursor, Windsurf, Google Antigravity, and Trae, ...
The Hacker News

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...
SecurityWeek

CISA KEV Catalog Expanded 20% in 2025, Topping 1,480 Entries

The CISA KEV catalog was expanded with 245 vulnerabilities in 2025, including 24 flaws exploited by ransomware groups.

Cloud file-sharing sites targeted for corporate data theft attacks

A threat actor known as Zestix has been offering to corporate data stolen from dozens of companies likely after breaching ...
FedScoop

Why automation is key to modernizing federal IT compliance

By replacing spreadsheet-based processes with FedRAMP-authorized automated workflows, federal agencies can gain real-time ...
Ecommerce Fastlane

Best 5 Data Masking Solutions to Meet Evolving Compliance Standards in 2026

Data masking and anonymization solutions are used by organizations to safeguard sensitive data by removing personal ...